I'm using JSP together with struts and I need to set up a user with a link with sensitive information in the query string. So far I have not been able to find a way to encrypt the query string so the parameters are invisible encrypted to the user. I have tried this code with no success:
I'm using this in conjunction with Oracle Reports. The link that the user will be clicking on could potentially have information about their account and such. Basically, one of the requirements on the project is that the url be either encrypted or not visible...
Joined: Mar 22, 2005
Why would a user not be allowed to see information (or even just IDs) for their own account?
A non-visible URL (or hidden parameter) provides no security at all. [ December 20, 2006: Message edited by: Ulf Dittmer ]
Joined: Nov 03, 2006
Oracle Reports lives on a completely separate server and there is authentication information for that particular server that no user should ever see.